build(deps): bump org.owasp:dependency-check-maven from 10.0.3 to 10.0.4

[dependabot]

Bumps org.owasp:dependency-check-maven from 10.0.3 to 10.0.4.

Release notes

Sourced from org.owasp:dependency-check-maven's releases.

Version 10.0.4

Refer to the CHANGELOG.md for information about improvements and upgrade notes.

Changelog

Sourced from org.owasp:dependency-check-maven's changelog.

Version 10.0.4 (2024-09-01)

• build(deps): exclude unused dependency (#6916)
• fix: improve regex (#6917)
• fix: correctly handle null values in cpeMatch (#6915)
• fix(site): Update Fluido skin to resolve broken fork-me-on-github image (#6914)
• fix: do not report over 100% download complete (#6899)
• fix: Correct spelling of occurring in NvdApiDataSource.java (#6883)
• fix: skip blank lines in requirements.txt (#6867)
• fix: correct percentage calculation (#6868)
• docs: remove old recommendation (#6860)

See the full listing of changes.

Commits

• 5120cbd build: prepare release v10.0.4
• 05df233 docs: release notes for 10.0.4
• a3a74bc build(deps): bump org.apache.maven.plugins:maven-failsafe-plugin from 3.3.0 t...
• 67c9d9e build(deps): bump golang from 1.22.6-alpine to 1.23.0-alpine (#6893)
• 1bc85e2 build(deps): bump org.apache.maven.plugins:maven-failsafe-plugin
• 2fe67ed build(deps): bump commons-codec:commons-codec from 1.17.0 to 1.17.1 (#6900)
• e835fad build(deps): exclude unused dependency (#6916)
• ccc151a fix: improve regex (#6917)
• e090d40 chore: additional tests (#6918)
• b4339ce fix: correctly handle null values in cpeMatch (#6915)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 40%. Comparing base (e26eaa4) to head (60c91a5).
Report is 2 commits behind head on master.

Additional details and impacted files

@@            Coverage Diff            @@
##             master   #2233    +/-   ##
=========================================
- Coverage        40%     40%    -0%     
- Complexity      807     945   +138     
=========================================
  Files           371     371            
  Lines         18807   18807            
  Branches       1774    1774            
=========================================
- Hits           7488    7487     -1     
  Misses        10726   10726            
- Partials        593     594     +1     

see 1 file with indirect coverage changes